Microsoft is looking into a new flaw that could let hackers run code if they
can convince users to hit the ‘F1’ key in response to a pop-up window.
In a post on the Microsoft security blog, communications manager Jerry Bryant
said that the flaw was made public on Friday, but that the company hadn’t seen
any attacks yet, and that computers running Windows 7, Vista or Sever 2008 are
not affected — so XP users beware.
"The issue in question involves the use of VBScript and Windows Help files in
Internet Explorer," Bryant noted.